IRIS

Revealing anomalies to support error detection in software-intensive systems is a promising approach when traditional detection mechanisms are considered inadequate or not applicable. The core of anomaly detection lies in the definition of the expected behavior of the observed system. Unfortunately, the behavior of complex and dynamic systems is particularly difficult to understand. To improve the accuracy of anomaly detection in such systems, in this paper we present a context-aware anomaly detection framework which acquires information on the running services to calibrate the anomaly detection. To cope with system dynamicity, our framework avoids instrumenting probes into the applica-tion layer of the observed system monitoring multiple underlying layers instead. Experimental evaluation shows that the detection accuracy is in-creased considerably through context-awareness and multiple layers moni-toring. Results are compared to state-of-the-art anomaly detectors exer-cised in demanding more static contexts.

Context-Awareness to improve Anomaly Detection in Dynamic Service Oriented Architectures / Zoppi, Tommaso; Ceccarelli, Andrea; Bondavalli, Andrea. - STAMPA. - 9922:(2016), pp. 145-158. (Intervento presentato al convegno INTERNATIONAL CONFERENCE ON COMPUTER SAFETY, RELIABILITY AND SECURITY tenutosi a Trondheim, Norway nel 20-23 September 2016) [10.1007/978-3-319-45477-1_12].

Context-Awareness to improve Anomaly Detection in Dynamic Service Oriented Architectures

ZOPPI, TOMMASO;
2016-01-01

Abstract

Revealing anomalies to support error detection in software-intensive systems is a promising approach when traditional detection mechanisms are considered inadequate or not applicable. The core of anomaly detection lies in the definition of the expected behavior of the observed system. Unfortunately, the behavior of complex and dynamic systems is particularly difficult to understand. To improve the accuracy of anomaly detection in such systems, in this paper we present a context-aware anomaly detection framework which acquires information on the running services to calibrate the anomaly detection. To cope with system dynamicity, our framework avoids instrumenting probes into the applica-tion layer of the observed system monitoring multiple underlying layers instead. Experimental evaluation shows that the detection accuracy is in-creased considerably through context-awareness and multiple layers moni-toring. Results are compared to state-of-the-art anomaly detectors exer-cised in demanding more static contexts.
2016
Computer Safety, Reliability and Security
..
Springer
978-3-319-45476-4
2-s2.0-84988602612
Zoppi, Tommaso; Ceccarelli, Andrea; Bondavalli, Andrea
Context-Awareness to improve Anomaly Detection in Dynamic Service Oriented Architectures / Zoppi, Tommaso; Ceccarelli, Andrea; Bondavalli, Andrea. - STAMPA. - 9922:(2016), pp. 145-158. (Intervento presentato al convegno INTERNATIONAL CONFERENCE ON COMPUTER SAFETY, RELIABILITY AND SECURITY tenutosi a Trondheim, Norway nel 20-23 September 2016) [10.1007/978-3-319-45477-1_12].
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/400718
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 11
  • ???jsp.display-item.citation.isi??? ND
social impact